You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@cassandra.apache.org by "Robert Stupp (JIRA)" <ji...@apache.org> on 2015/08/03 10:45:04 UTC
[jira] [Resolved] (CASSANDRA-9476) Less restrictive permissions for
UDFs
[ https://issues.apache.org/jira/browse/CASSANDRA-9476?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Robert Stupp resolved CASSANDRA-9476.
-------------------------------------
Resolution: Duplicate
Resolving as duplicate of CASSANDRA-9892
> Less restrictive permissions for UDFs
> -------------------------------------
>
> Key: CASSANDRA-9476
> URL: https://issues.apache.org/jira/browse/CASSANDRA-9476
> Project: Cassandra
> Issue Type: Improvement
> Reporter: Robert Stupp
> Priority: Minor
>
> CASSANDRA-9402 introduces very restrictive permissions for UDFs. Being very restrictive with arbitrary executable code is generally the way to go.
> It might be necessary in some situations to raise the permissions or extend list or accessible classes on a per-function or global scope.
> Idea in CASSANDRA-9402 was to introduce a permission to allow functions without any restrictions - e.g. to introduce a CREATE UNTRUSTED permission.
> But such an "access everything everywhere" permission essentially allows access to the whole database and everything else.
> Another idea is to allow configuration of the allowed permissions and/or black/whitelisted classes.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)